We have the following network setup:
Windows 2003 & 2008 Domain, Exchange & AD servers.
Wireless running WPA2 Enterprise / 802.18, PEAP with AES across Cisco ISE with Certificate.
When a user is connected with an iPhone; pulling Exchange mail (with ActiveSync) & browsing the web changes his domain password on Windows based laptop/desktop, the iPhone Exchange email immediately prompts for a new password, but the wireless connection itself does not, it will after a reboot of device, re-enable of the wireless connection or fairly long extended period of time, this is obviously a security risk as outlined in post: http://enterpriseios.com/forum/topic/Exchange_Passwords_after_iOS_501_Up... - the reason for the new post is the difference in exchange mail prompting for new password, but wireless connection now.
Is this Apple iOS standard or is there a fix for this either on the Windows AD/Domain side or device config?
How and where does resolution of conflicting restrictions or multiple email settings take place?
In theory, the resolution could take place on an MDM server or on the device. So where does it take place? I have seen reference to a file called the ProfileTruth.plist. What do people know about this file and where is it generated?
I am assisting with the rollout of a large number of iPads in several schools.
For the limited pilots we have done so far, we have used MacBooks as sync stations and one Apple ID per sync station. We have spreadsheets of VPP codes to comply with licensing, but they are essentially unused.
Ideally we would like to do installation and updating of apps over the air and gather reporting data, and as such want to use an MDM. I really like the idea that specific groups will get certain apps. However, i am seeing several roadblocks that are due to Apple's restrictions and the limitations of their API:
- how can we push apps and app updates without requiring the kids to confirm and enter an Apple ID and password?
- how can we get all of these student iPads to look the same post deployment so that the teachers have consistency? Essentially folders would need to be moved, etc.
- how to view iPads like with ARD?
- Even if we were to stick with the sync station model, the new EULA for iBooks doesn't let us use purchased iBooks on all of the same devices. Textbooks will be a major component of this project.
We are using Airwatch for ours iPad.
Users register to Airwatch with their MS Active Directory account. Airwatch pushes a X509 Certificate (based on the user account and issued by our MS PKI) on the device.
We have two use cases :
- users access email via MS Exchange Activ Sync : authentication is done using MS Active Directory user/password
- users access extranet web applications : authentication is done by CA SiteMinder using the iPad X509 certificate
If the AD password expires, users don't have the possibility to change it with the iPad. They need to connect to corporate network on the LAN with their desktop.
I have several questions
1) Can we use the certificate to authenticate on Exchange?
What we need to do on Exchange, on Airwatch (if necessary) and on the iPad?
2) Can we use the fisrt certificate pushed by Airwatch or we need to issue another one for Exchange with specific caracteristics?
Thanks for your help
we are a company with 150 blackberrys and 50 ipads. We are searching for a mdm for our global company. We have the solution airwatch and famoc but the support for airwatch is in germany very bad. The next hting is that famoc is good but the handling is very complex.
With famoc can we manage blackberrys and ipads.
What is the best solution currently?
MobileIron or an antohter MDM solution.
Thanks for your help
Hello EnterpriseiOS.com Professionals,
The Enterprise Device Alliance is conducting its annual Fall survey of IT professionals at http://www.surveymonkey.com/s/B8HQV6D.
As always, we will share the results with the community.
This year, we're collaborating with Ryan Faas, a veteran consultant and journalist for Computerworld, to develop a survey that will discover how the pervasiveness of mobile devices and non-Windows systems has affected IT management in large organizations. Your experiences and opinions, collected in these survey results, can influence product development in solution providers and decision-making by enterprise IT management.
The survey is comprehensive and thorough. To thank you for your contribution we will raffle one $50 gift certificate for every 100 respondents. We will, of course, provide you a copy of the results. Please make a difference and give us your thoughts.
Please take the Survey here: http://www.surveymonkey.com/s/B8HQV6D
On December 12 at 2 pm ET/11 am PT. Ryan Faas will discuss the survey results with me, T. Reid Lewis, president of the Enterprise Device Alliance and co-founder of GroupLogic. This webcast will explore the results in detail, offering examples of how other companies are tackling the challenges presented by mobile device management.
Sign up for the Webcast here: https://centrify.webex.com/centrify/onstage/g.php?t=a&d=828848995
Thank you on behalf of the members of the Enterprise Device Alliance!
T. Reid Lewis
Creators and publishers of:
activEcho: File Sharing and Syncing for Enterprise http://www.grouplogic.com/activecho
mobilEcho: Mobile File Management for iPhone & iPad http://www.grouplogic.com/mobilecho
ArchiveConnect: Macintosh integration for file archiving solutions http://www.grouplogic.com/archiveconnect
ExtremeZ-IP: Macintosh file & print server for Windows http://www.grouplogic.com/extremez-ip
MassTransit: automated file transfer solution for Windows & Macintosh http://www.grouplogic.com/masstransit
I am new here but have a problem I am sure others have encountered or will encounter....so I wanted to see if anyone had any other suggestions.
We have the need to push a 500 MB video file to about 50 iPads as quick as possible. These iPads will be on a plane, traveling home. So, if it is a physical device using usb it must have a small footprint. We can create our own WiFi segment on the plane, however my testing below will show the issues there.
Testing the iPad2 and it's Wifi capabilites I have come to the conclusion that max transfer rate on the device itself is about 38 Mbps. I tested on a network that has 200 MB of bandwidth and tested with multiple iPads. So, if you have a 500 MB file you want to move to the iPad via WiFi it will take 105 seconds or one minute and 45 seconds. Here in lies the problem.....if you need to get 50 iPads that file..that download stream is not autonomous. Every iPad you join will denegrate that transfer speed and once you join 10 or so the transfer will take much too long.
If you had enough bandwidth for 10 iPads to join and all get thier own 38 mbps of bandwidth...why can you not tranfer to all 10 iPads in one minute and 45 seconds?
Thanks for any thoughts on this....
We just wanted to let you know about a few new updates that we have made to SimpleMDM, a free iOS-only Mobile Device Management solution. SimpleMDM is designed to allow you to quickly and easily configure iOS devices with essential configurations such as WiFi and Email, and now, push Apps!
To learn about all of the capabilities of SimpleMDM, please visit http://www.simplemdm.com.
This update allows a SimpleMDM administrator to:
- Select iTunes AppStore apps to be pushed to managed devices
- Over-the-air deploy In-house Enterprise iOS apps, with automatic provisioning profile update handling
- Effectively manage deployment of apps by groups of devices
Read more about how it works here: SimpleMDM App Deployment
The feature is free addition to SimpleMDM, and you can have an account set up and configured in minutes.
Note that paid AppStore apps (via VPP) are not yet supported, though the feature is road-mapped (let us know if this would be a valuable addition to your organization).
We hope you enjoy it, and please feel free to ask any questions in the comments below.
Hello all. Wondering if anyone else out there is trying to use the iPhone to host SIP-based voice clients. Specifically, to use the iPhone as a WiFi only SIP voice device.
We have been working on this idea for a while now at our hospital. We are replacing some antiquated DECT phones. We could just go with a newer VoIP phone set but there is a great interest in everything the iPhone can do on top of just voice. We are also looking at messaging (not SMS), reference apps, etc.
We are testing the unlocked (no SIM) iPhone 4S 16GB for hardware. We have tested the Avaya One-X SIP and CIsco Jabber clients with mixed results.
We will start testing the Vocera Connect app in a couple of weeks.
We have also talked to the folks at Voalte. It seems that they are laser focused on this solution (specifically for health care), but they are a little out of our price range.
We have also struggled to get out Cisco WLAN environment up to snuff to properly support voice. There is a big challenge making things right for the iPhone's WiFi since you will get zero help from Apple.
Would love to hear if anyone else is trying something similar and what experienced or advice you can provide.
We have a server located at our facility that we store PDF, Excel, and WORD docs. We would like to automatically sync to multiple IPads. What is the best way to do this? Is it possible for designated folders on the server be "pushed" to each iPad anytime there is a change. We use the iPads for accessing service manuals and various documents. The files MUST reside on the iPad as cell service and WIFI are not always accessible from the field.
According to Network World, Apple is working to make Bonjour compatible with enterprise networks. Apple is proposing an IETF working group to propose improvements.
Bonjour, Apple's marketing name for Multicast DNS, was designed with home network in mind. In larger networks, certain problems become apparent, as detailed in the petition by university network administrators:
- Airplay does not work when Apple TV's and Apple client devices are on different IP subnets. It is common for the enterprise wireless and wired networks in our institutions to utilize different IP subnets.
- Bonjour technologies also do not work in a scalable, sustainable fashion between different IP subnets. Work arounds such as Wide-Area Bonjour (DNS-SD) and Dynamic DNS updates have major scalability and security issues in enterprise networks.
- For performance and security reasons, many of our institutions do not enable IP multicast on their enterprise wireless networks. This limits the usefulness of current Bonjour technologies.
- The majority of our institutions' enterprise wireless networks utilize WPA2-Enterprise authentication and encryption. Current Apple TV's cannot connect to these networks even though the majority of Apple's other devices can.
- The security method used to connect Apple devices to Apple TVs (a single password per Apple TV) opens the devices to "hijacking" by unauthorized users.
To their credit, Apple has already addresses the last two issues with a recent Apple TV update.
(Via Ars Technica)
Anybody tried to pre-set-up a WebDav access somehow using any tools on iPads? Would be cool to set up that on new devices so that customers could later connect to corporate data using apps that support WebDav with no need to set connection manually (iWork for iOS). Couldn't find an option neither in Configurator nor in Profile Manager, but maybe some of you could?...
Here's what I'd like to ask you, guys, about:
Is there a way to access files on a Time Capsule from iPad using WebDav from an app like Pages/Numbers/Keynote for iOS?
Could I access those files from outside of company's office using just Time Capsule's abilities (no additional VPN servers and stuff...)?
Is it possible to set access rights for different users so they could only access their files and create, say, one additional file storage for everybody?
About This Site
- Comparison of MDM Providers (500,863)
- Complete List of iOS User-Agent Strings (188,329)
- How to get remote viewing/control of the IPAD screen via internet or preferably 3G? (115,296)
- Apple Configurator vs. MDM (96,792)
- Mobile Device Management (66,182)
- AirWatch (53,990)
- Absolute Manage (51,094)
- Apple Profile Manager (51,037)
- Gartner Magic Quadrant for MDM (2014, 2012, 2011) (45,356)
- iOS Device Management Open Source Way (41,022)
Comparison of MDM Providers
Forum topic comment by cjackson 2 days ago
Forum topic comment by iCed 3 days ago
Forum topic comment by 960Design 3 days ago
Forum topic comment by HomeBru 3 days ago
Forum topic comment by HomeBru 3 days ago
Mobile Management Provider comment by Aaron56 4 days ago
Forum topic comment by Xalio 6 days ago
Forum topic comment by tsabicheck 6 days ago
Mobile Management Provider changed by JAMFSoftware 1 week ago
Story added by Aaron Freimark 1 week ago
Forum topic comment by HCCSC John H 1 week ago
Forum topic comment by caihl 1 week ago
Forum topic added by 960Design 1 week ago
Forum topic comment by BeerAdmin 1 week ago
Forum topic added by sathiskumar sub... 1 week ago
Forum topic comment by rogerhenson 1 week ago
Mobile Management Provider changed by amy01 1 week ago